Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: hPw+9x0gTAST9ItQ0k/4gFrifdfvWB4yFBBMlp9SBwo=
Subject key identifier: 05:72:B6:F1:6C:D4:8B:1A:7F:A4:F5:3C:BA:C5:D5:5A:36:3D:CA:6D
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 0198D4E0DA2C7F249DF5A4D257B7BD801B41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 03:02:42 +0000
Manifest this update: Sat 23 Aug 2025 03:02:42 +0000
Manifest next update: Sun 24 Aug 2025 03:02:42 +0000
Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: zxhfijUN0O0iUkP8T9XkFK6OlGrzqUhv7t3cbT8/XdE=)
2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:da:2c:7f:24:9d:f5:a4:d2:57:b7:bd:80:1b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: Aug 23 03:02:42 2025 GMT
Not After : Aug 24 03:02:42 2025 GMT
Subject: CN=0572b6f16cd48b1a7fa4f53cbac5d55a363dca6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:13:ff:f5:9c:3b:8a:e5:e9:52:c8:e9:16:bc:
16:f8:98:e7:6d:0d:54:4c:44:4a:91:d1:3a:53:d3:
29:d3:4f:2e:5b:3b:57:fe:f5:3a:7e:fb:ce:88:c0:
7a:e3:2a:b8:3b:0f:00:f4:47:cb:14:df:11:f1:ef:
2c:cb:c0:2c:1c:78:37:77:aa:83:4b:eb:f9:6c:0e:
67:15:4a:07:06:90:c1:3b:db:da:22:06:f9:36:d0:
fc:f4:7f:10:f2:24:00:a9:21:4c:ed:bd:93:b3:0c:
fe:a7:68:52:06:ea:47:25:61:f0:7a:65:b8:c4:d2:
c3:c2:d4:be:ba:a2:b8:20:26:4f:ef:91:24:4d:bf:
ff:df:7f:e2:bb:45:07:7c:20:f6:1c:1d:4e:59:1f:
d7:04:65:9f:89:59:4b:c6:5b:97:5f:d5:fe:aa:1f:
b9:80:d4:bc:7e:d8:71:c2:81:ae:bd:7e:a6:47:78:
27:03:8a:74:c3:c3:6b:2a:a5:f5:dc:02:ff:75:4a:
cf:a6:72:d9:10:89:a6:17:7c:8c:d2:3c:af:96:93:
35:21:b7:9f:42:67:13:4c:f1:b1:19:be:c2:b2:1d:
f4:30:b2:c2:0f:6d:51:d2:1a:3f:86:c3:fc:fa:38:
be:5a:da:3c:aa:61:5c:5b:1e:cb:a6:d3:7f:69:5e:
f7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:72:B6:F1:6C:D4:8B:1A:7F:A4:F5:3C:BA:C5:D5:5A:36:3D:CA:6D
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:a1:bc:a4:e7:4a:2f:60:36:47:69:2b:2f:3f:01:4c:22:a1:
df:c9:98:32:5d:02:c9:69:7b:c8:39:bc:55:b4:ad:bb:1c:5c:
c2:e2:5d:be:bd:a9:a4:d8:15:11:0b:55:10:47:92:6d:37:29:
b2:f2:bd:b1:4d:8c:eb:60:09:81:cd:9f:9a:91:e3:42:07:5c:
11:4b:c7:2b:94:94:63:7b:5c:e4:cf:72:dc:36:c3:54:37:f9:
55:7c:ed:ad:8a:82:ee:5a:24:25:55:b1:9d:7f:45:e2:e9:2a:
56:91:2e:9e:0a:a2:a4:12:1a:99:ad:31:3c:5e:f1:0c:b2:c6:
39:18:43:0b:da:4f:bf:3b:ed:f2:7b:d3:40:67:8c:c3:cd:bf:
cc:8f:12:87:5d:14:c5:db:5c:9a:ef:ec:cf:19:5d:52:fb:22:
a2:e1:c8:b9:7e:91:d7:bd:1b:1e:4d:4f:f1:b3:a7:ec:81:2f:
cc:48:bc:a6:1c:fd:aa:b5:c4:36:f2:f2:f0:d0:f0:47:06:f5:
b7:f7:1a:34:ba:c6:66:43:45:b0:f9:93:a8:56:24:89:ae:8e:
27:88:d4:7b:e8:c5:ce:5f:cc:b4:bd:b6:73:9e:c6:db:38:5b:
83:55:94:ac:7f:14:0c:8a:fe:49:34:cc:a8:d4:14:73:d4:e7:
b6:50:1a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:24:58 2025 by rpki-client